package com.itshizhan.itjidancideveloper.configs

import org.springframework.context.annotation.Configuration
import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity
import org.springframework.security.config.annotation.web.builders.HttpSecurity
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter

@Configuration
@EnableWebSecurity
@EnableGlobalMethodSecurity(prePostEnabled = true)
class SecurityConfig:WebSecurityConfigurerAdapter() {

    override fun configure(http: HttpSecurity?) {
        // super.configure(http) 务必删除，否则报：Can't configure antMatchers after anyRequest
        // super.configure(http)
        //所有都放行
        http!!.authorizeRequests()
                .antMatchers("/**").permitAll()
                .and().csrf().disable()
    }
}